Mirrors
/
flux2
mirror of https://github.com/fluxcd/flux2.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

update guide for mozilla sops

Browse Source 
Signed-off-by: Somtochi Onyekwere <somtochionyekwere@gmail.com>
pull/750/head
Somtochi Onyekwere 4 years ago
parent 81f68157fa
commit 5f759200c6
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File

3
docs/guides/mozilla-sops.md
Unescape Escape View File

@ -106,7 +106,8 @@ secrets by iterating over all the private keys until it finds one that works.
### Using various cloud providers ### Using various cloud providers
When using AWS/GCP KMS, you'll have to bind an IAM Role with access to the KMS When using AWS/GCP KMS, you don't have to include the gpg `secretRef` under
`spec.provider` (you can skip the `--decryption-secret` flag when running `flux create kustomization`), instead you'll have to bind an IAM Role with access to the KMS
keys to the `default` service account of the `flux-system` namespace for keys to the `default` service account of the `flux-system` namespace for
kustomize-controller to be able to fetch keys from KMS. kustomize-controller to be able to fetch keys from KMS.

Write Preview
Loading…
Cancel
Save